Disabling Remote Access to the Oracle Java Web Console

You can prevent users from connecting to the console from remote systems. Starting with the Solaris 10 11/06 release, you can
disable remote access only to the console, while leaving the other access
permissions in place, by using the following procedure:

How to Disable Remote Access to the Oracle Java Web Console

Become superuser or assume an equivalent role on the system where
the console is running.

After the restart the console now only responds to a browser on the
same system as the console server process. You cannot use a proxy in the browser,
only a direct connection. You can also use the https://localhost:6789/
URL to access the console.